cbcvebase.
CVE-2012-2095
published 2014-04-07

CVE-2012-2095: The SetWiredProperty function in the D-Bus interface in WICD before 1.7.2 allows local users to write arbitrary configuration settings and gain privileges via…

PriorityP334medium6.9CVSS 2.0
AVLACMAuNCCICAC
EXPLOIT
EPSS
0.80%
51.8th percentile
The SetWiredProperty function in the D-Bus interface in WICD before 1.7.2 allows local users to write arbitrary configuration settings and gain privileges via a crafted property name in a dbus message.

Affected

24 ranges
VendorProductVersion rangeFixed in
david_paleinowicd<= 1.7.1
david_paleinowicd
david_paleinowicd
david_paleinowicd
david_paleinowicd
david_paleinowicd
david_paleinowicd
david_paleinowicd
david_paleinowicd
david_paleinowicd
david_paleinowicd
david_paleinowicd
david_paleinowicd
david_paleinowicd
david_paleinowicd
david_paleinowicd
david_paleinowicd
david_paleinowicd
david_paleinowicd
david_paleinowicd
david_paleinowicd>= 0 < 1.7.2.4-11.7.2.4-1
fedoraprojectfedora
fedoraprojectfedora
fedoraprojectfedora

CVSS provenance

nvdv2.06.9MEDIUMAV:L/AC:M/Au:N/C:C/I:C/A:C
osv6.9MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.